Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.
References
Link | Resource |
---|---|
http://lists.x.org/archives/xorg-announce/2015-April/002561.html | Patch Vendor Advisory |
http://seclists.org/oss-sec/2015/q2/81 | Third Party Advisory VDB Entry |
http://www.debian.org/security/2015/dsa-3224 | Third Party Advisory |
http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html | |
http://www.securityfocus.com/bid/73962 | Third Party Advisory VDB Entry |
http://www.ubuntu.com/usn/USN-2568-1 | Third Party Advisory |
https://bugs.freedesktop.org/show_bug.cgi?id=56508 | Issue Tracking |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: canonical
Published: 2015-04-16T14:00:00
Updated: 2016-10-17T13:57:01
Reserved: 2015-04-09T00:00:00
Link: CVE-2013-7439
JSON object: View
NVD Information
Status : Modified
Published: 2015-04-16T14:59:00.070
Modified: 2016-10-18T03:43:42.077
Link: CVE-2013-7439
JSON object: View
Redhat Information
No data.
CWE